b'TREASURY INSPECTOR GENERAL FOR TAX ADMINISTRATION\n\n\n\n\n                      The Customer Account Data Engine 2\n                     Database Implementation Project Made\n                        Progress in Design Activities, but\n                           Improvements Are Needed\n\n\n\n                                      September 20, 2011\n\n                              Reference Number: 2011-20-110\n\n\n\n\n This report has cleared the Treasury Inspector General for Tax Administration disclosure review process\n  and information determined to be restricted from public release has been redacted from this document.\n\n\n\n Phone Number | 202-622-6500\n Email Address | TIGTACommunications@tigta.treas.gov\n Web Site      | http://www.tigta.gov\n\x0c                                                  HIGHLIGHTS\n\n\nTHE CUSTOMER ACCOUNT DATA                             Implementation security and privacy controls\nENGINE 2 DATABASE                                     and made critical decisions relating to security of\nIMPLEMENTATION PROJECT MADE                           the database. Despite overall progress,\nPROGRESS IN DESIGN ACTIVITIES,                        improvements are needed to ensure key\n                                                      activities for the Design Specification Report,\nBUT IMPROVEMENTS ARE NEEDED\n                                                      audit plan, and database trial initializations are\n                                                      timely, and the Interface Control Documents and\nHighlights                                            Work Breakdown Structure comply with\n                                                      Enterprise Life Cycle criteria.\nFinal Report issued on                                WHAT TIGTA RECOMMENDED\nSeptember 20, 2011\n                                                      TIGTA recommended that the Chief Technology\n                                                      Officer ensure key activities and deliverables\nHighlights of Reference Number: 2011-20-110\n                                                      (including security) are completed timely and, if\nto the Internal Revenue Service Chief\n                                                      not, an assessment is made to determine the\nTechnology Officer.\n                                                      impact or risk of not completing the required\nIMPACT ON TAXPAYERS                                   activity; the Enterprise Life Cycle guidance is\n                                                      kept current and includes all artifacts needed for\nThe mission of the Customer Account Data              projects following the Iterative Path; and several\nEngine 2 (CADE 2) Program is to provide               other system development process\nstate-of-the-art individual taxpayer account          improvements are implemented to ensure the\nprocessing and technologies to improve service        CADE 2 system functions as designed when\nto taxpayers and enhance Internal Revenue             deployed into IRS operations.\nService (IRS) tax administration. Once\ncompleted, the new modernization environment          In its response to the report, the IRS agreed with\nshould allow the IRS to more effectively and          four of TIGTA\xe2\x80\x99s recommendations and has taken\nefficiently update taxpayer accounts, support         or plans to take appropriate corrective actions.\naccount settlement and maintenance, and               The IRS disagreed with TIGTA\xe2\x80\x99s\nprocess refunds on a daily basis, all of which will   recommendation to ensure the Internal Revenue\ncontribute to improved taxpayer services.             Manual (IRM) guidance for the Enterprise Life\n                                                      Cycle is current and addresses the artifacts\nWHY TIGTA DID THE AUDIT                               needed for the Iterative Path. The IRS stated\n                                                      the IRM is updated annually and reflects the\nThe overall objective was to review the\n                                                      required artifacts. Further, the IRS indicated\npreliminary and detailed designs of the CADE 2\n                                                      that when projects proceed through milestone\ndatabase to ensure that the design is secure\n                                                      reviews without the artifacts identified in the\nand satisfies the stated requirements, and that\n                                                      IRM, they do so under a tailored plan, a practice\nproject management practices adhere to\n                                                      also outlined in the IRM.\nEnterprise Life Cycle standards and processes\nfor the related design milestones.                    TIGTA found that the IRS\xe2\x80\x99s project tailoring plan\n                                                      contained the artifacts from the IRM and was not\nWHAT TIGTA FOUND                                      subsequently updated to include an updated\nThe CADE 2 Database Implementation Project            artifact based on the Iterative Path approach.\nteam made progress to complete design                 As a result, TIGTA maintains that the IRM needs\nactivities and address security and privacy           to be updated to make the guidance more\ncontrols. For example, the Database                   effective in managing projects following the\nImplementation Project team closed issues             Iterative Path. Until the IRM guidance can be\nidentified from the CADE 2 database Extract,          revised during the next annual update cycle, the\nTransform, and Load prototypes and addressed          IRS should consider sending out additional\nrequirements and business rules. In addition, an      guidance based on lessons learned.\nimproved Project team and Cybersecurity\norganization partnership addressed Database\n\x0c                                                  DEPARTMENT OF THE TREASURY\n                                                         WASHINGTON, D.C. 20220\n\n\n\n\nTREASURY INSPECTOR GENERAL\n  FOR TAX ADMINISTRATION\n\n\n\n\n                                                September 20, 2011\n\n\n MEMORANDUM FOR CHIEF TECHNOLOGY OFFICER\n\n\n FROM:                   (for) Michael R. Phillips\n                               Deputy Inspector General for Audit\n\n SUBJECT:                      Final Audit Report \xe2\x80\x93 The Customer Account Data Engine 2 Database\n                               Implementation Project Made Progress in Design Activities, but\n                               Improvements Are Needed (Audit # 201120002)\n\n This report presents the results of our review of the Customer Account Data Engine 2 Database\n Implementation. Our overall objective was to review the preliminary and detailed designs1 of the\n Customer Account Data Engine 2 database and ensure that the database is designed in a secure\n manner, the design satisfies the stated requirements, and project management practices adhere to\n Enterprise Life Cycle standards and processes for the related design milestones. This review is\n included in our Fiscal Year 2011 Annual Audit Plan and addresses the major management\n challenge of Modernization.\n Management\xe2\x80\x99s complete response to the draft report is included as Appendix IX.\n Copies of this report are also being sent to the Internal Revenue Service managers affected by the\n report recommendations. Please contact me at (202) 622-6510 if you have questions or Alan\n Duncan, Assistant Inspector General for Audit (Security and Information Technology Services),\n at (202) 622-5894.\n\n\n\n\n 1\n  Enterprise Life Cycle Milestone 3 is the preliminary (i.e., logical) design of all solution components and\n Milestone 4a is the detailed (i.e., physical) design of solution components.\n\x0c                                         The Customer Account Data Engine 2\n                                   Database Implementation Project Made Progress\n                                  in Design Activities, but Improvements Are Needed\n\n\n\n\n                                               Table of Contents\n\nBackground .......................................................................................................... Page 1\n\nResults of Review ............................................................................................... Page 3\n          The Database Implementation Project Made Progress to Complete\n          Design Activities and Address Security and Privacy Controls ..................... Page 3\n          Improvements Are Needed to Ensure Timely Delivery of Key\n          Activities ....................................................................................................... Page 5\n                     Recommendations 1 and 2: ................................................ Page 9\n\n          Interface Control Documents and the Integrated Master\n          Schedule Do Not Comply With All Enterprise Life Cycle\n          Criteria .......................................................................................................... Page 10\n                     Recommendation 3:........................................................ Page 12\n\n                     Recommendations 4 and 5: .............................................. Page 13\n\n\nAppendices\n          Appendix I \xe2\x80\x93 Detailed Objective, Scope, and Methodology ........................ Page 14\n          Appendix II \xe2\x80\x93 Major Contributors to This Report ........................................ Page 18\n          Appendix III \xe2\x80\x93 Report Distribution List ....................................................... Page 19\n          Appendix IV \xe2\x80\x93 Enterprise Life Cycle Overview .......................................... Page 20\n          Appendix V \xe2\x80\x93 Customer Account Data Engine 2\n          Integrated Design Reviews ........................................................................... Page 22\n          Appendix VI \xe2\x80\x93 Customer Account Data Engine 2\n          Transition Strategy ........................................................................................ Page 23\n          Appendix VII \xe2\x80\x93 Database Implementation Design Issues\n          in Pending Status........................................................................................... Page 25\n          Appendix VIII \xe2\x80\x93 Glossary of Terms ............................................................. Page 26\n          Appendix IX \xe2\x80\x93 Management\xe2\x80\x99s Response to the Draft Report ...................... Page 31\n\x0c               The Customer Account Data Engine 2\n         Database Implementation Project Made Progress\n        in Design Activities, but Improvements Are Needed\n\n\n\n\n                  Abbreviations\n\nCADE        Customer Account Data Engine\nDSR         Design Specification Report\nELC         Enterprise Life Cycle\nETL         Extract, Transform, and Load\nIMF         Individual Master File\nIMS         Integrated Master Schedule\nIRM         Internal Revenue Manual\nIRS         Internal Revenue Service\nTIGTA       Treasury Inspector General for Tax Administration\nWBS         Work Breakdown Structure\n\x0c                                    The Customer Account Data Engine 2\n                              Database Implementation Project Made Progress\n                             in Design Activities, but Improvements Are Needed\n\n\n\n\n                                             Background\n\nIn August 2008, the Internal Revenue Service (IRS) Commissioner established the Modernized\nTaxpayer Account Program Integration Office to manage the transition of current individual\nincome tax processing, which consists of multiple\ncomputer systems for processing tax returns, payments,\nand other transactions that affect individual taxpayer           The Customer Account Data\n                                                              Engine 2 Program is the highest\naccounts, into a more consolidated system. Working in          priority information technology\nconjunction with IRS business owners, the Program             modernization project in the IRS.\nIntegration Office decided to integrate elements from both\nthe existing Individual Master File (IMF)2 and current\nCustomer Account Data Engine (CADE) processes into a new CADE 2 Program. The proposed\nplan incrementally transfers taxpayer accounts from the current IMF and CADE processing\nsystems to a new CADE 2 relational database.\nThe CADE 2 Program is the top information technology modernization project in the IRS. The\nCADE 2 Transition Strategy3 involves three phases: Transition States 1 and 2 and a Target State.\nTo accomplish Transition State 1 goals, the CADE 2 Database Implementation Project was\nestablished to move the IRS away from operating in two tax processing environments and to\nmaintain a single system of records for all individual taxpayer accounts. The primary deliverable\nof the CADE 2 Database Implementation Project is a relational database that will house\nindividual taxpayer account data, currently processed by the IMF and current CADE systems.\nSome of the Database Implementation Project objectives are to:\n      \xe2\x80\xa2    Develop the end-state database data model that meets business needs such as transaction\n           posting, financial settlement, and post analysis.\n      \xe2\x80\xa2    Create and implement a database that supports both the database system functions (such\n           as record, read, write, update, and performance) and business requirements (such as data\n           security, account viewing, and reporting).\n      \xe2\x80\xa2    Initialize the database with the IMF and current CADE system data and update active\n           records from Daily Processing.\n      \xe2\x80\xa2    Provide a viewing capability for the taxpayer account data residing in the CADE 2\n           database via Corporate Files On-Line and Individual Master File On-Line commands.\n\n\n\n2\n    See Appendix VIII for a glossary of terms.\n3\n    See Appendix VI for the CADE 2 Transition Strategy.\n                                                                                             Page 1\n\x0c                                  The Customer Account Data Engine 2\n                            Database Implementation Project Made Progress\n                           in Design Activities, but Improvements Are Needed\n\n\n\nThis review is one of a series of audits providing assessments of the CADE 2 Program as part of\nour Security and Information Technology Audit Strategy for Fiscal Years 2010 and 2011. For\ninstance, the Treasury Inspector General for Tax Administration (TIGTA) issued its report on the\nresults of the CADE 2 prototype activities on November 24, 2010.4 The objective of each\nprototype was to demonstrate confidence in the CADE 2 Program approach by verifying system\nviability and performance and by defining components that would serve as the foundation for\ndevelopment activities. Specifically, the CADE 2 Database Implementation Project was\ndependent on the CADE 2 database Extract, Transform, and Load (ETL) prototypes that were\nestablished to test hypotheses around the tools and architecture of selected Database\nImplementation Project components. The results of the prototypes would facilitate the CADE 2\nDatabase Implementation Project design and develop the CADE 2 database in Transition State 1.\nIn addition to the prototype review, the TIGTA has recently completed audits covering the\nCADE 2 Program Management Office and Daily Processing.5\nThis review was performed at the Modernization and Information Technology Services\norganization facility in New Carrollton, Maryland, during the period January through May 2011.\nWe conducted this performance audit in accordance with generally accepted government\nauditing standards. Those standards require that we plan and perform the audit to obtain\nsufficient, appropriate evidence to provide a reasonable basis for our findings and conclusions\nbased on our audit objective. We believe that the evidence obtained provides a reasonable basis\nfor our findings and conclusions based on our audit objective. Detailed information on our audit\nobjective, scope, and methodology is presented in Appendix I. Major contributors to the report\nare listed in Appendix II.\n\n\n\n\n4\n  Prototype Process Improvements Will Benefit Efforts to Modernize Taxpayer Account Administration (Reference\nNumber 2011-20-001, dated November 24, 2010).\n5\n  The Customer Account Data Engine 2 Program Management Office Implemented Systems Development\nGuidelines; However, Process Improvements are Needed to Address Inconsistencies (Audit # 201020025), draft\nreport dated August 11, 2011; and The Customer Account Data Engine 2 Is Making Progress Towards Achieving\nDaily Processing, but Improvements Are Warranted to Ensure Full Functionality (Audit # 201120001), draft report\ndated August 9, 2011.\n                                                                                                        Page 2\n\x0c                                    The Customer Account Data Engine 2\n                              Database Implementation Project Made Progress\n                             in Design Activities, but Improvements Are Needed\n\n\n\n\n                                       Results of Review\n\nThe Database Implementation Project Made Progress to Complete\nDesign Activities and Address Security and Privacy Controls\nThe CADE 2 Database Implementation Project team made progress toward implementing a new\ndatabase that will house all individual taxpayer accounts and provide the ability for IRS\nemployees to view the updated account information online. In addition, security and privacy\ncontrols will be implemented as necessary to protect taxpayer information.\nThe Database Implementation Project team accomplished key activities to complete the\npreliminary and detailed designs6 of the CADE 2 database and to ensure the design considered\nsecurity and privacy controls. For instance, the Database Implementation Project team took\nactions to close open issues from the CADE 2 database ETL prototype projects. A dedicated\nteam was formed to address business requirements and business rules issues. Also, an improved\nProject team and Cybersecurity organization partnership addressed Database Implementation\nsecurity and privacy controls.\n\nThe Database Implementation Project team closed issues identified from the\nprototypes\nOne of the primary objectives of the Database Implementation Project is to resolve outstanding\nissues from the CADE 2 database ETL prototypes. The Database Implementation Project team\nconducted analyses and tests that resulted in simplifying complex transformation rules and\nimproved database performance. Simplifying transformation rules improves transformation\nperformance, which is the measurement of the time it takes to transform the data in preparation\nfor loading into the CADE 2 database.\nIn order for the CADE 2 Program to meet business requirements, the CADE 2 system daily\nupdates must be completed in 6 hours. The CADE 2 Database Implementation ETL\nPerformance prototype indicated that it will take 12.81 hours during weekly peak days and\n8.94 hours during typical days. The Database Implementation Project team further closed the\nperformance gap between the allocated 6-hour processing window and the prototype projections\nby a combination of optimizing the hardware, system, and product configurations and revision of\nthe application code.\n\n\n\n6\n Enterprise Life Cycle Milestone 3 is the preliminary (i.e., logical) design of all solution components and\nMilestone 4a is the detailed (i.e., physical) design of solution components.\n                                                                                                              Page 3\n\x0c                                  The Customer Account Data Engine 2\n                            Database Implementation Project Made Progress\n                           in Design Activities, but Improvements Are Needed\n\n\n\nA dedicated team was formed to address business system requirements and\nbusiness rules\nGathering and developing business system requirements and business rules are the responsibility\nof the Program Management Office up to Milestone 2 and are critical as they serve as the\nfoundation for the system\xe2\x80\x99s preliminary and detailed design. At Milestone 3, the business system\nrequirements were provided to the Database Implementation Project team to further decompose\n(i.e., break down into component parts) for the preliminary and detailed designs. Business rules\nare developed from requirements. However, the general state of the requirements was not\nsufficient to begin this work. Therefore, a dedicated team was formed to address the business\nsystem requirements and business rules. The Database Implementation Project team developed\nthe CADE 2 Database Implementation Analyst Handbook and a framework tool for collecting\nbusiness rules. The CADE 2 Database Implementation Analyst Handbook in conjunction with\nthe Requirements Management Plan and the Requirements and Demand Management\nRequirements Handbook provides guidelines, principles, best practices, and techniques for\nbusiness rules development for the Milestone 4a detailed design.\nIn addition, the Database Implementation Project team completed deep dives and a series of\nintegrated design reviews7 between September 2010 and April 2011 to assess whether design\nplans were consistent with requirements. A collaborative team identified a total of 88 design\nissues. These efforts, along with the business system requirements and business rules process\nimprovements, contributed to closing 84 of the 88 open issues. The remaining four design\nissues8 were still open as of April 18, 2011, the detailed design milestone exit date. One issue\nwas closed in early May 2011, and the three remaining design issues were expected to be closed\nby the end of May 2011.\n\nAn improved Project team and Cybersecurity organization partnership addressed\nDatabase Implementation security and privacy controls\nIn November 2010 the TIGTA reported that, as the work progressed, the prototype teams gave\nmore consideration to security provisions and a foundation was laid for providing more\nopportunities for the Cybersecurity organization\xe2\x80\x99s involvement in CADE 2 design activities.9\nOur review of CADE 2 Database Implementation Project preliminary and detailed design\nactivities showed that the Cybersecurity organization was heavily engaged and proactive in its\nassigned role of managing all aspects of CADE 2 security. From the onset, a technical leader\nfrom the Cybersecurity organization and Privacy office was assigned to the Database\nImplementation Project team to coordinate and ensure alignment and compliance with enterprise\n\n\n7\n  See Appendix V for CADE 2 Integrated Design Reviews.\n8\n  See Appendix VII for Database Implementation Design Issues in pending status.\n9\n  Prototype Process Improvements Will Benefit Efforts to Modernize Taxpayer Account Administration (Reference\nNumber 2011-20-001, dated November 24, 2010).\n                                                                                                       Page 4\n\x0c                                    The Customer Account Data Engine 2\n                              Database Implementation Project Made Progress\n                             in Design Activities, but Improvements Are Needed\n\n\n\nstandards in the areas of security and privacy. This included participating in the development of\nthe security and privacy requirements.\nWhen the CADE 2 Program Management Office expressed concern that encrypting data from\nthe IMF to the CADE 2 database would slow performance, the Cybersecurity organization\ncompleted a risk assessment and, based on compensating controls, agreed with a risk-based\ndecision not to require Enterprise File Transfer Utility encryption.\nThe Cybersecurity organization created a threat model to understand the attackable surface, entry\npoints, trust boundaries, Sensitive but Unclassified data stores, entities, processes, and data paths\nof the system. Also, they developed a Live Data Risk Mitigation Strategy that provides a\nstandardized process for: 1) developing CADE 2 Live Data Guidance, 2) working with the\nPrivacy office, and 3) tracking all live data requests through its life cycle, as oversight. This\nstrategy addresses concerns reported in the above-referenced TIGTA report that contractors were\nallowed to work with live taxpayer data without adequate request documentation.\nSecurity and privacy deliverables, which included the security and privacy section of the\nCADE 2 Database Implementation Design Specification Report (DSR), Security Risk\nAssessments, and Privacy Impact Assessments, were adequate and completed timely, as\nrequired. For instance, our review of the CADE 2 Database Privacy Impact Assessment showed\nthat taxpayer privacy protection was adequately considered in the design. Also, our review of\nthe Security Risk Assessments showed areas of potential security risks10 are being resolved or\nmitigated and are adequately monitored by the Cybersecurity organization.\nEven though some security and privacy aspects of the Database Implementation system had not\nbeen specified at the completion of the physical design,11 we are confident they will be\nconsidered prior to testing because of the improved collaborative partnership among the Project\nteam and Cybersecurity organization. Also, the operation and effectiveness of security controls\nwill be evaluated in a future audit of the CADE 2 system.\n\nImprovements Are Needed to Ensure Timely Delivery of Key Activities\nDespite overall progress, improvements are needed to ensure timely delivery of key activities,\nsuch as the CADE 2 Database Implementation DSR, the IRS CADE 2 Database Implementation\nAudit Plan, and database trial initializations. The CADE 2 Database Implementation Project is\nfollowing the Enterprise Life Cycle (ELC) Iterative Path. See Figure 1 for a depiction of the\nIterative Path approach to information technology project development. In the Iterative Path\n\n\n10\n   Security risks are based on selected security controls from the Internal Revenue Manual as well as from\nRecommended Security Controls for Federal Information Systems and Organizations (National Institute of\nStandards and Technology Special Publication 800-53).\n11\n   Some decisions regarding the ultimate design of the technical infrastructure, boundary authority, and daily update\napplication architecture components are required in order to define security controls at a sufficient level of detail.\n                                                                                                              Page 5\n\x0c                                    The Customer Account Data Engine 2\n                              Database Implementation Project Made Progress\n                             in Design Activities, but Improvements Are Needed\n\n\n\ndevelopment life cycle, projects start with initial planning and end with deployment, with\nrepeated cycles of requirement discovery, development, and testing in between, compared to the\ntraditional Waterfall Path that is distinguished by sequential development of a solution with\nplanned reviews and formal approvals required before continuation of work.12 The ELC allows\nfor tailoring. Tailoring is customization of the ELC and its various features for use by an\nindividual project. The objective is to arrive at an approach that is based on standard methods\nthat have been modified (as necessary) to take into account the specific needs and unique\nconditions of the project. The intent of tailoring is not to fit a project into the constrictions of the\nELC, but to adapt the ELC so that it is practical and effective given the realities of the project.\nThe Database Implementation Tailoring Plan defines the Project\xe2\x80\x99s plan to satisfy the\nrequirements following the ELC and includes the deliverables and work products necessary to\nsupport the iterative approach to information technology project development.\n                 Figure 1: Iterative Path Approach to Information Technology\n                                      Project Development\n\n\n\n\nSource: Enterprise Operations New Hire Orientation presentation, dated February 10, 2011.\n\nAs required by the ELC framework, key design activities, such as the DSR and audit plan, were\nnot completed as scheduled.\n\nThe Database Implementation Design Specification Report was not completed as\nplanned\nThe CADE 2 Database Implementation DSR documents the application design, data design,\ntechnical infrastructure, and traceability to the requirements. It also describes the design based\non a defined scope and the business system requirements that are described in the CADE 2\nProject Charter, the CADE 2 Database Implementation Business System Report, and the CADE\n2 Program Roadmap.\n\n\n12\n     See Appendix IV for an overview of the ELC.\n                                                                                                 Page 6\n\x0c                                     The Customer Account Data Engine 2\n                               Database Implementation Project Made Progress\n                              in Design Activities, but Improvements Are Needed\n\n\n\nThe Database Implementation Project Tailoring Plan showed that the DSR will be finalized in\nMilestone 4a and did not provide for an update in Milestone 4b. However, the DSR was not\nfinalized prior to exiting Milestone 4a because of the dependency on pending design issues,13\nsuch as transformation rules, Integrated Production Model design, and Process Automation and\nMonitoring design.\nThe Project team used the ELC tables and did not realize it did not include DSR updates in\nMilestone 4b. The ELC tables list the Milestone phase artifacts (i.e., the tangible result or output\nof an activity or task performed by a project during the life cycle). There are several updates\nplanned for the DSR during Milestone 4b. The ELC provides that project teams should be aware\nthat other artifacts (not included in the ELC tables) may be required and/or necessary for their\nparticular project. The ELC tables should not be considered all-inclusive. Also, although\nartifacts may be initiated in one phase, they are subsequently reviewed and may be updated\nthroughout later phases of the ELC. Since the Project is following the Iterative Path, we would\nexpect the DSR to be updated during Milestone 4b for necessary design changes as a result of\ntesting.\nThe IRS maintains that the ELC Iterative Path was adopted and implemented earlier this year\nwith a clear understanding that it would need to be tailored in the near term to accommodate\nproject needs and to leverage more effectively the experience of key stakeholders with\npre-existing development approaches (e.g., Waterfall). As such, lessons learned from the project\nteams using the new iterative path would be relied on and captured to enable revision of the path\n(and associated artifacts) to establish a viable and effective iterative development approach.\nIn addition, the Chief Architect provided the perspective that the iterative development of the\nDSR was a major step forward for the IRS ELC. The path the Database Implementation Project\nchose enabled a wide audience from business, engineering, development, and test to get a good\nlook at the design, and then focus on the critical areas of the design and resolution of design\nissues. A traditional Waterfall would have limited the review time and locked the design with\nsome poor design choices. The TIGTA agrees and believes as the IRS matures in its\nimplementation of the Iterative Path development life cycle, the ELC and its execution will be\nmore aligned.\nIn addition, the CADE 2 Transition State 1 Transformation Rules were incomplete.\nTransformation Rules are one of several items used by the ETL Program to transform individual\ntaxpayer accounts from IMF flat-file formats and current CADE relational database formats (for\nthe one-time initialization) to the formats and structures defined for the CADE 2 database. Our\nreview of this documentation found missing file layout identification information. Project\nmanagement indicated that this document would be completed by May 31, 2011, during\nMilestone 4b.\n\n\n13\n     See Appendix VII for the Database Implementation Design Issues in Pending Status.\n                                                                                             Page 7\n\x0c                               The Customer Account Data Engine 2\n                         Database Implementation Project Made Progress\n                        in Design Activities, but Improvements Are Needed\n\n\n\nThe Database Implementation Project Audit Plan was not completed timely\nAs discussed earlier, security deliverables were generally completed timely, except in this case.\nThe IRS CADE 2 Database Implementation Audit Plan was not finalized as required prior to\nexiting Milestone 4a on April 18, 2011. The audit plan describes how audit trail requirements\nwill be met for the CADE 2 Database Implementation. Audit trails are key to achieving several\nsecurity-related goals, including supporting individual accountability, detecting application\nintrusions and other forms of abuse, and allowing analysis and reconstruction of the sequences of\nevents for effective security incident response. In addition, the development of a comprehensive\naudit plan supports the IRS\xe2\x80\x99s goal to resolve its Computer Security Material Weakness on audit\ntrails and related TIGTA and Government Accountability Office findings.\nWe identified information gaps in the following areas of the IRS CADE 2 Database\nImplementation Audit Plan: Daily Processing/Database Implementation Balance and Control,\nError Handing, and Enterprise Informatica Platform. The Cybersecurity Information Technology\nSecurity Requirements Overview guidelines state the final IRS CADE 2 Database\nImplementation Audit Plan should be submitted as part of the security package for the\nMilestone 4a exit. Because many configuration details in the areas provided above were not yet\navailable, the audit plan was not finalized and submitted prior to the CADE 2 Milestone 4a exit.\nTimelines of security deliverables are critical to ensure validation, testing, and overall risk\nassessment can be performed in a timely manner.\n\nDatabase trial initializations were not completed as scheduled\nThe purpose of the CADE 2 database trial initializations is to assess and address performance\nand data quality issues prior to production implementation. Initialization of the CADE 2\ndatabase will be performed in phases. During the first phase, database trial initializations were\noriginally planned to begin in March 2011 and April 2011. The duration of the database trial\ninitialization was planned for 6 months, with the formal database initialization beginning\nOctober 2011. Meanwhile, there would be a number of iterative database trial initializations\nincreasing in volume and complexity until September 2011.\nHowever, the database trial initializations were delayed, and a new schedule to complete this\nactivity was not finalized prior to the completion of our fieldwork in May 2011. Personnel from\nthe Modernization and Information Technology Services Application Development office cited\nthe following reasons for the delay: delays in getting the testing environment ready, delays in\nawarding the Informatica contract, and late resolution of the Enterprise File Transfer Utility\nissue.\nNot performing the database trial initializations as originally planned may impact the quality of\ntesting efforts. For instance, there will be only a limited amount of time for further performance\ntuning and identifying data anomalies. Also, there may be less time to address data quality\nbusiness rules and take corrective actions prior to production deployment.\n\n                                                                                            Page 8\n\x0c                               The Customer Account Data Engine 2\n                         Database Implementation Project Made Progress\n                        in Design Activities, but Improvements Are Needed\n\n\n\nWe are concerned with the number of key activities that were not completed as scheduled and\nwere instead postponed to Milestone 4b. With an already aggressive schedule, these delays\ncould put the CADE 2 Transition State 1 scheduled dates for coding, testing, and certification at\njeopardy and the \xe2\x80\x9cgo-live\xe2\x80\x9d date of January 2012 for Database Implementation could be at risk.\n\nRecommendations\nThe Chief Technology Officer should:\nRecommendation 1: Ensure key activities and deliverables (including security deliverables)\nfor the Database Implementation Project are completed timely and, if not, ensure an assessment\nis made to determine the impact or risk of not completing the required activity.\n       Management\xe2\x80\x99s Response: The IRS agreed with this recommendation. The IRS will\n       ensure key milestone activities and deliverables (including security deliverables) for the\n       Database Implementation Project are completed timely and, if not, ensure an assessment\n       is made to determine the impact or risk of not completing the required activity. If it is\n       determined that there are impacts that put the project at risk, they will be documented and\n       mitigated through the risk process currently in place.\nRecommendation 2: Ensure the Internal Revenue Manual (IRM) 2.16.1, Enterprise Life\nCycle Guidance, is kept current and includes all artifacts that are needed for projects following\nthe Iterative Path.\n       Management\xe2\x80\x99s Response: The IRS disagreed with this recommendation. IRS\n       management stated that the Enterprise Life Cycle Guidance in IRM 2.16.1 is already\n       current, and is kept current through an annual update process. The IRM already reflects\n       the artifacts required for projects following the Iterative Path. When projects proceed\n       through milestone reviews without the artifacts identified in the IRM for their respective\n       development path, they do so under a tailored plan consistent with the practice also\n       outlined in the IRM guidance. A deviation from standard development path, or tailored\n       plan, can be allowed through normal risk-based decision processes (e.g., either executive\n       or governance decisions) with supporting documentation.\n       Office of Audit Comment: The TIGTA found that the IRS\xe2\x80\x99s project tailoring plan\n       contained the artifacts from the IRM and was not subsequently updated to include an\n       updated artifact based on the Iterative Path approach. As a result, the TIGTA maintains\n       that the IRM needs to be updated to make the guidance more effective in managing\n       projects following the Iterative Path. Until the IRM guidance can be revised during the\n       next annual update cycle, the IRS should consider sending out additional guidance based\n       on lessons learned.\n\n\n\n\n                                                                                            Page 9\n\x0c                               The Customer Account Data Engine 2\n                         Database Implementation Project Made Progress\n                        in Design Activities, but Improvements Are Needed\n\n\n\nInterface Control Documents and the Integrated Master Schedule Do\nNot Comply With All Enterprise Life Cycle Criteria\nThe ELC is the approach used by the IRS to manage and implement business change through\ninformation systems initiatives. The ELC provides the direction, processes, tools, and assets\nnecessary to accomplish business change in a consistent and repeatable manner. An objective of\nthe ELC is to help ensure project and program success by reducing risk and ensuring compliance\nwith applicable internal and external standards and mandates.\n\nInterface Control Documents did not always meet established standards\nThe Interface Control Document is an agreement among multiple organizations that must\ncollaborate to produce a solution regarding design of the interface. The CADE 2 Database\nImplementation Project team completed three Interface Control Documents for Milestone 4a:\n   \xe2\x80\xa2   Daily Processing and Database Implementation.\n   \xe2\x80\xa2   Database Implementation and Integrated Production Model.\n   \xe2\x80\xa2   Database Implementation and Integrated Data Retrieval System.\nAlthough all of the Database Implementation Interface Control Documents contained the proper\napprovals, the documents did not always meet ELC standards. For example, key document\nelements were either missing or did not provide the necessary details describing the\ninterface processes, and specific interface controls for error handling performed by the interfaces\nwere not provided. The Database Implementation Project manager stated that error checking\nwill be performed on each side of the two interfaced systems. The interface-related errors should\nbe included in the Database Implementation Interface Control Document, but the engineering\nteam decided they would include this information only in the DSRs. Also, there was no\ninformation on interface issues. Project management stated that all of the design issues were\nkept in a separate document on the Project SharePoint site and issues were addressed during two\nCustomer Technical Reviews.\nAlthough the Interface Control Documents included capacity and performance requirements,\nthere was no mention of service-level, operational-level, or any other type of agreement as\nrequired by the ELC. The purpose of these types of agreements is to ensure that coordination\nefforts are well understood and there are no missing gaps. Project management stated that they\ncoordinated with the ELC Program Management Office in preparing the Database\nImplementation Interface Control Documents. The Service Level Agreement is required for a\nsystem to communicate with an external (non-IRS) system. It is not required for an IRS system\nto communicate with another IRS system. Usually, the Memorandum of Understanding or\nUniform Work Request is used within the IRS. The process owner of the Interface Control\nDocuments advised they never complete the Service Level Agreement in the Interface Control\nDocument for internal systems. Also, for CADE 2, they are creating a Master Service Level\n                                                                                           Page 10\n\x0c                               The Customer Account Data Engine 2\n                         Database Implementation Project Made Progress\n                        in Design Activities, but Improvements Are Needed\n\n\n\nAgreement for the Enterprise Informatica Platform, which would cover the Database\nImplementation Project. This is inconsistent with the ELC and IRS procedures that provide for\nthe use of operational agreements for an IRS system communicating with another IRS system.\nFurther, references in the Interface Control Documents were not current. Older versions of\ndesign documents were provided in the References section of the document and referenced\nthroughout the document when a more current version existed. For example, when we reviewed\nthe Interface Control Documents for specific details on interface controls for error handling, the\ndocuments referenced an older version of the Daily Processing DSR. Project management stated\nthat this occurred because the Database Implementation Project had focused a lot on the content\nand forgot to update the References section.\nWhen the Interface Control Documents have missing or insufficient information, an end-to-end\nview of the interface process cannot be obtained and there is no assurance that systems have been\nadequately designed to ensure interface implementation testing.\nManagement Action: In June 2011, the Database Implementation Project team improved the\nInterface Control Documents by including previously omitted items and up-to-date references.\n\nWork Breakdown Structure is not complete\nThe CADE 2 Database Implementation Project team did not adhere to all ELC criteria with\nregard to defining and maintaining the Integrated Master Schedule (IMS). The IMS contains a\nWork Breakdown Structure (WBS). The WBS is a project management tool used to define and\ngroup a project\xe2\x80\x99s individual work elements (or tasks) in a way that helps organize and define the\ntotal work scope of the project. In conjunction with the Database Implementation Project team\xe2\x80\x99s\ndecision to follow the ELC Iterative Path, they used a methodology called \xe2\x80\x9crolling wave,\xe2\x80\x9d which\nis a project management technique that involves progressive elaboration to add detail to the WBS\non an ongoing basis. At the beginning of the project, near term deliverables are decomposed into\nindividual components and defined at the greatest level of detail.\nThe Project team indicated that they did not have sufficient knowledge at project inception to\naccurately define and develop the WBS. IRS guidelines recognize the inherent challenges with\nbuilding a project WBS that incorporates the entire lifecycle of the project, noting that a project\nWBS represents the scope of the project from beginning to end, to the best of the team\xe2\x80\x99s ability\nat the time of creation. IRS guidelines further state that the detailed decomposition of WBS\nelements is often not known during the initial creation of the project WBS. It is acceptable to\nleave these generic WBS elements in the project WBS without further decomposition. It is\nimportant to reflect them in the WBS from the beginning to provide visibility to the entire scope\nof the project.\nThe Database Implementation Project Tailoring Plan contains deliverables identified through\nMilestone 5 (project completion) that are not reflected in the initial WBS or subsequent iterations\nthrough Milestone 4a. To comply with the Modernization and Information Technology Services\n\n                                                                                            Page 11\n\x0c                                  The Customer Account Data Engine 2\n                            Database Implementation Project Made Progress\n                           in Design Activities, but Improvements Are Needed\n\n\n\norganization\xe2\x80\x99s Work Breakdown Structure Template Tailoring Procedure, the initial WBS should\nhave reflected all of the deliverables identified in the WBS Tailoring Plan through Milestone 5.\nWe previously reported this same condition in our review of the CADE 2 Program Management\nOffice14 and recommended that the Chief Technology Officer ensure the IMS includes all key\nactivities associated with the development and deployment of the CADE 2 System, including the\nDatabase Implementation Project.\nDevelopment of a comprehensive WBS is a critical factor for project success. Equally as\nimportant is performing regular status updates as well as schedule analysis. IRS guidelines\nrecommend these activities be conducted weekly and require they be done no less than twice a\nmonth. While the Database Implementation Project monitored the critical path on a weekly\nbasis, the naming conventions of the deliverables/activities in the weekly Critical Path Summary\nreport were not consistent with the naming conventions in the IMS. This may be attributed to the\nfact that the IMS is in a different format from the Critical Path Summary report. Discrepancies\nin naming conventions make it difficult to reconcile the activities on the Critical Path Summary\nreport. Delays in completing activities on the critical path can impede the January 2012\nscheduled deployment date.\nManagement Action: In July 2011, The IRS updated the Database Implementation section of\nthe IMS for Milestone 4b to mitigate the differences in naming conventions. Specifically, the\nIRS added a column on the Critical Path/Key Task Summary called \xe2\x80\x9cIMS Unique Identifier, i.e.,\nUID\xe2\x80\x9d to further clarify and cross-reference the tasks contained in the Critical Path Summary in\nrelation to the IMS.\n\nRecommendations\nThe Chief Technology Officer should:\nRecommendation 3: Ensure future versions of the Database Implementation Project\xe2\x80\x99s\nInterface Control Documents meet ELC standards by including accurate and adequate\ninformation on document references, interface controls, error handling, and issues.\nManagement\xe2\x80\x99s Response: The IRS agreed with this recommendation. The Database\nImplementation Project\xe2\x80\x99s Interface Control Documents use templates that meet ELC standards.\nImprovements have been made to Interface Control Documents for Milestone 4a to include\npreviously omitted items and up-to-date references.\n\n\n\n\n14\n  The Customer Account Data Engine 2 Program Management Office Implemented Systems Development\nGuidelines; However, Process Improvements Are Needed to Address Inconsistencies (Audit # 201020025), draft\nreport dated August 11, 2011.\n                                                                                                     Page 12\n\x0c                              The Customer Account Data Engine 2\n                        Database Implementation Project Made Progress\n                       in Design Activities, but Improvements Are Needed\n\n\n\nRecommendation 4: Ensure that the Interface Control Document guidance on Service Level\nAgreements is consistent with processes being followed by the project.\n       Management\xe2\x80\x99s Response: The IRS agreed with this recommendation. The\n       Associate Chief Information Officer, Enterprise Services, will review and clarify the\n       Service Level Agreements section of the Interface Control Document guidance.\nRecommendation 5: Ensure that appropriate and consistent naming conventions are used in\nfuture IMS and related documents to ensure activities can be traced between these documents.\n       Management\xe2\x80\x99s Response: The IRS agreed with this recommendation. To mitigate\n       this in future milestones, starting in Milestone 4b, the IRS has included a column on\n       the Critical Path/Key Task Summary called \xe2\x80\x9cIMS UID,\xe2\x80\x9d which will clarify and\n       cross-reference the tasks contained in the IMS.\n\n\n\n\n                                                                                         Page 13\n\x0c                                    The Customer Account Data Engine 2\n                              Database Implementation Project Made Progress\n                             in Design Activities, but Improvements Are Needed\n\n\n\n                                                                                                     Appendix I\n\n          Detailed Objective, Scope, and Methodology\n\nThe overall objective of this audit was to review the preliminary and detailed designs1 of the\nCADE 2 database2 and ensure that the database is designed in a secure manner, the design\nsatisfies the stated requirements, and project management practices adhere to ELC standards and\nprocesses for the related design milestones. There were tests that we could not perform because\nthe activity was moved to Milestone 4b, which was outside the scope of this review. To\naccomplish our objective, we:\nI.       Reviewed the ETL controls for ensuring the accuracy and completeness of the CADE 2\n         database.\n         A. Interviewed project staff to obtain an understanding of plans for creating and updating\n            the CADE 2 database and controls for ensuring data accuracy and completeness.\n             1. Discussed any gaps or missing requirement areas (i.e., contingency planning,\n                incident response, disaster recovery, etc.) and their impact.\n             2. If not indicated in the documents reviewed in I.B. below, determined how\n                business rules and the tax code will be maintained.\n         B. Identified and reviewed key design documents.\n         C. Using information obtained in I.A. and I.B. and other supporting documentation,\n            assessed whether design plans are consistent with the stated requirements.\n         D. Determined if identified database ETL issues were resolved, including issues\n            identified from prototyping efforts.\n             1. Reviewed ETL prototype status reports, the CADE 2 database ETL prototype and\n                the CADE 2 Database Performance Test Prototype Final Report, version 1, dated\n                October 2010, to identify outstanding issues.\n             2. Obtained documentation on the resolution of outstanding issues, including\n                Engineering Alternative Analysis Reports (i.e., the CADE 2 ETL Performance\n                Alternative Analysis Report, dated September 2010).\n\n\n\n1\n  Enterprise Life Cycle Milestone 3 is the preliminary (i.e., logical) design of all solution components and\nMilestone 4a is the detailed (i.e., physical) design of solution components.\n2\n  See Appendix VIII for a glossary of terms.\n                                                                                                               Page 14\n\x0c                              The Customer Account Data Engine 2\n                        Database Implementation Project Made Progress\n                       in Design Activities, but Improvements Are Needed\n\n\n\n       E. Determined if the Database Implementation Project will meet projected time periods\n          for initializing the database trial initializations.\n       F. Determined to what extent the Project has addressed the dependency upon the\n          development of business rule sets/rules for addressing the IMF data transformation\n          and data quality issues and anomalies.\nII.    Determined if systems and interfaces affected by Database Implementation have been\n       adequately addressed to minimize system impact.\n       A. Interviewed Project staff to obtain an understanding of the work performed to\n          adequately address Database Implementation-affected systems and interfaces and\n          related Project dependencies.\n          1. Identified supporting integration analysis, design, and testing documentation.\n          2. Identified any issues from reliance on existing legacy design documentation for\n             the affected systems (e.g., Programming Requirements Package, Functional\n             Specification Package, Core Record Layout, etc.).\n       B. Determined if Interface Control Documents exist for all Database Implementation\n          interface systems (Daily Processing, the Integrated Data Retrieval System, and the\n          Integrated Production Model) and are adequately designed to ensure interface\n          implementation testing.\n       C. Evaluated interface processing controls (including inputs/outputs) to ensure that\n          system interfaces are secure.\n       D. Determined if the IMS dependencies on other subordinate schedules and Project\n          dependencies on Delivery Partners are properly managed.\nIII.   Determined if the appropriate security and privacy controls had been considered and\n       timely included in the CADE 2 Database Implementation design.\n       A. Interviewed Program and Project management staff to determine if Project staff and\n          Cybersecurity office personnel were involved in the development of security and\n          privacy controls.\n       B. Reviewed security and privacy documentation at the Program and Project levels to\n          identify the controls applicable to Database Implementation. Documents reviewed at\n          the Program level included: Security Framework, Security Strategy, and Privacy\n          Strategy. Documents reviewed at the Project level included the Business System\n          Report, DSR, Privacy Impact Assessment, and System Security Plan.\n       C. Using information obtained in III.A., III.B., and the WBS, determined if security\n          deliverables were completed timely and, if not, assessed the effect.\n\n\n                                                                                         Page 15\n\x0c                                  The Customer Account Data Engine 2\n                            Database Implementation Project Made Progress\n                           in Design Activities, but Improvements Are Needed\n\n\n\n        D. Reviewed the security categorization criteria prescribed by Federal Information\n           Processing Standards Publication 1993 and National Institute of Standards and\n           Technology Special Publication 800-604 and determined if the security\n           categorizations the IRS assigned to the CADE 2 Database Implementation are\n           documented and supported.\n        E. Reviewed the Database Implementation System Security Plan for Milestones 3 and\n           4a.\n        F. Reviewed the Privacy Impact Assessment to ensure that privacy protection is\n           considered in the design.\nIV.     Determined if Project management practices adhere to ELC standards and processes for\n        the related design milestones.\n        A. Determined if a Project Charter exists that clearly defines the scope, vision, system\n           objectives, and potential impact on organizational culture and existing processes.\n        B. Determined if a Project plan was created to manage system design project efforts and\n           is properly updated.\n            1. Reviewed the Database Implementation Project Management Plan to ensure it has\n               been properly updated.\n            2. Reviewed the WBS and identified if Project time periods were defined and\n               achieved, critical phases were present, and management approvals were present.\n        C. Determined if Project risks were assessed and appropriately mitigated.\n        D. Determined if there are well-defined system requirements by reviewing requirements\n           management documentation obtained from the CADE 2 Program Management Office\n           team and Project-level system requirements documentation. Also, we determined if\n           requirements were analyzed for compliance with Federal Government regulations,\n           internal control policies, and security procedures and if requirement approval is\n           formally documented by all key stakeholders and by governance or steering\n           committees.\n        E. Determined if requirement changes are controlled by evaluating if changes to system\n           requirements are verified.\n\n\n\n\n3\n Standards for Security Categorization of Federal Information and Information Systems, published February 2004.\n4\n Guide for Mapping Types of Information and Information Systems to Security Categories, Volume 1, Revision 1,\npublished August 2008.\n                                                                                                       Page 16\n\x0c                              The Customer Account Data Engine 2\n                        Database Implementation Project Made Progress\n                       in Design Activities, but Improvements Are Needed\n\n\n\n       F. Determined what metrics are used for assessing Project quality assurance by\n          reviewing the CADE 2 Program Performance and Quality Management Plan and\n          related documentation.\n       G. Evaluated contingency planning efforts to ensure all Project contingencies are\n          properly addressed.\nInternal controls methodology\nInternal controls relate to management\xe2\x80\x99s plans, methods, and procedures used to meet their\nmission, goals, and objectives. Internal controls include the processes and procedures for\nplanning, organizing, directing, and controlling program operations. They include the systems\nfor measuring, reporting, and monitoring program performance. We determined the following\ninternal controls were relevant to our audit objective: the ELC and related IRS guidelines and\nthe processes followed in the development of information technology projects. We evaluated\nthese controls by conducting interviews and meetings with management and staff, attending\nCADE 2 meetings of the Program and Project teams, and reviewing Project documentation such\nas the Project Charter, various Project plans, and other documents which provided evidence of\nwhether ELC systems development processes were followed.\n\n\n\n\n                                                                                           Page 17\n\x0c                             The Customer Account Data Engine 2\n                       Database Implementation Project Made Progress\n                      in Design Activities, but Improvements Are Needed\n\n\n\n                                                                              Appendix II\n\n                 Major Contributors to This Report\n\nAlan R. Duncan, Assistant Inspector General for Audit (Security and Information Technology\nServices)\nDiana M. Tengesdal, Acting Director\nKimberly R. Parmley, Audit Manager\nK. Kevin Liu, Acting Audit Manager\nEsther M. Wilson, Lead Auditor\nJena R. Whitley, Senior Auditor\nDavid F. Allen, Program Analyst\nMichael T. Mohrman, Information Technology Specialist\n\n\n\n\n                                                                                     Page 18\n\x0c                             The Customer Account Data Engine 2\n                       Database Implementation Project Made Progress\n                      in Design Activities, but Improvements Are Needed\n\n\n\n                                                                           Appendix III\n\n                         Report Distribution List\n\nCommissioner C\nOffice of the Commissioner \xe2\x80\x93 Attn: Chief of Staff C\nDeputy Commissioner for Operations Support OS\nDeputy Commissioner for Services and Enforcement SE\nChief, Agency-Wide Shared Services OS:A\nCommissioner, Wage and Investment Division SE:W\nDeputy Chief Information Officer for Strategy/Modernization OS:CTO\nAssociate Chief Information Officer, Modernization \xe2\x80\x93 Program Management Office\nOS:CTO:MP\nChief Counsel CC\nNational Taxpayer Advocate TA\nDirector, Office of Legislative Affairs CL:LA\nDirector, Office of Program Evaluation and Risk Analysis RAS:O\nDirector, Risk Management Division OS:CTO:SP:RM\nOffice of Internal Control OS:CFO:CPIC:IC\nAudit Liaisons:\n   Commissioner, Wage and Investment Division SE:W:S:PEI\n   Director, Risk Management Division OS:CTO:SP:RM\n\n\n\n\n                                                                                 Page 19\n\x0c                               The Customer Account Data Engine 2\n                         Database Implementation Project Made Progress\n                        in Design Activities, but Improvements Are Needed\n\n\n\n                                                                                 Appendix IV\n\n                    Enterprise Life Cycle Overview\n\nThe ELC is the IRS\xe2\x80\x99s standard approach to business change and information systems initiatives.\nIt is a collection of Program and Project management best practices designed to manage business\nchange in a successful and repeatable manner. The ELC addresses large and small projects\ndeveloped internally and by contractors.\nThe ELC includes such requirements as:\n   \xe2\x80\xa2   Development of and conformance to enterprise architecture.\n   \xe2\x80\xa2   Improving business processes prior to automation.\n   \xe2\x80\xa2   Use of prototyping and commercial software, where possible.\n   \xe2\x80\xa2   Obtaining early benefit by implementing solutions in multiple releases.\n   \xe2\x80\xa2   Financial justification, budgeting, and reporting of project status.\nIn addition, the ELC improves the IRS\xe2\x80\x99s ability to manage changes to the enterprise, estimate the\ncost of changes, and engineer, develop, and maintain systems effectively. Figure 1 provides an\noverview of the phases and milestones within the ELC. A phase is a broad segment of work\nencompassing activities of similar scope, nature, and detail and providing a natural breakpoint in\nthe life cycle. Each phase begins with a kickoff meeting and ends with an executive\nmanagement decision point (milestone) at which IRS executives make \xe2\x80\x9cgo/no-go\xe2\x80\x9d decisions for\ncontinuation of a project. Project funding decisions are often associated with milestones.\n\n\n\n\n                                                                                          Page 20\n\x0c                                   The Customer Account Data Engine 2\n                             Database Implementation Project Made Progress\n                            in Design Activities, but Improvements Are Needed\n\n\n\n                    Figure 1: Enterprise Life Cycle Phases and Milestones\n\n                Phase                                   General Nature of Work                         Milestone\n\n Vision and Strategy/                  High-level direction setting. This is the only phase for\n                                                                                                           0\n Enterprise Architecture Phase         enterprise planning projects.\n Project Initiation Phase              Startup of development projects.                                    1\n                                       Specification of the operating concept, requirements, and\n Domain Architecture Phase                                                                                 2\n                                       structure of the solution.\n Preliminary Design Phase              Preliminary design (logical design) of solution components.         3\n Detailed Design Phase                 Detailed design (physical design) of solution components.          4A\n System Development Phase              Coding, integration, testing, and certification of solutions.      4B\n                                       Expanding availability of the solution to all target users.\n System Deployment Phase                                                                                   5\n                                       This is usually the last phase for development projects.\n                                                                                                        System\n Operations and Maintenance Phase      Ongoing management of operational systems.\n                                                                                                       Retirement\nSource: The Enterprise Life Cycle Guide.\n\n\n\n\n                                                                                                         Page 21\n\x0c                                The Customer Account Data Engine 2\n                          Database Implementation Project Made Progress\n                         in Design Activities, but Improvements Are Needed\n\n\n\n                                                                                   Appendix V\n\n                   Customer Account Data Engine 2\n                     Integrated Design Reviews\n\nIntegrated Review                  Outcomes\n\n\nDeep Dive Logical Design           The Deep Dive Logical Design Review validates that proposed project\nReview (3 Part)                    solutions are sound and adhere to the CADE 2 Program design\n                                   principles and the CADE 2 Program Roadmap and Architectural\nSeptember 28, 2010 \xe2\x80\x93\n                                   Components.\nOctober 3, 2010\n\nIntegrated Logical Design          The Integrated Logical Design Review validates that the project-level\nReview                             designs support the solution\xe2\x80\x99s logical implementation as defined in the\n                                   Program Roadmap and that the projects collectively will deliver an\nNovember 2010                      integrated and cohesive solution.\n\nEnd-to-End Logical Design          The End-to-End Logical Design Review gains leadership and oversight\nReview                             confidence that the solution will be successful and captures any\n                                   Milestone 3 Logical Design issues and action items.\nDecember 2010\n\n\nCADE 2 Database                    The CADE 2 Database Implementation End-to-End Physical Design\nImplementation End-to-End          Review provides an understanding of the Database Implementation DSR\nPhysical Design Review             and Interface Control Documents key components and gains knowledge\n                                   of what is included in each section of the documents for the stakeholder\nFebruary 2011                      review.\n\n\nCADE 2 Transition State 1          The CADE 2 Transition State 1 Physical Design Review gains\nPhysical Design Review             confidence that the Transition State 1 solution will be successful,\n                                   captures any Milestone 4a Physical Design issues and action items, and\nApril 2011                         ensures common understanding of next steps in Milestone 4b.\nSource: The IRS CADE 2 Integrated Design Review Documentation.\n\n\n\n\n                                                                                           Page 22\n\x0c                                     The Customer Account Data Engine 2\n                               Database Implementation Project Made Progress\n                              in Design Activities, but Improvements Are Needed\n\n\n\n                                                                                                     Appendix VI\n\nCustomer Account Data Engine 2 Transition Strategy\n\n     Figure 1: Description of CADE 2 Transition Strategy Achievements and Goals1\n\n                                                       Architectural\n    State      Business Achievement                                                    Related Program Goal\n                                                       Achievement\n    TS 1    \xe2\x80\xa2 Reduced risk and cost of           \xe2\x80\xa2 Target database deployed \xe2\x80\xa2 Move to relational database processing\n              operating two environments           and proven to accept all   that provides a solid data foundation for\n              for individual taxpayer              current-state account      the future and away from sequential,\n              account processing.                  conditions.                flat-file processing.\n            \xe2\x80\xa2 Timelier response to               \xe2\x80\xa2 Target database provides     \xe2\x80\xa2 Demonstrate substantive progress\n              taxpayers with refunds,              source for online              toward achieving long-term viability.\n              notices, and information.            viewing.                       o Complete migration of data from\n            \xe2\x80\xa2 Reduction of manual                \xe2\x80\xa2 Target database used to          current CADE and IMF into a single,\n              processes related to weekly          feed critical downstream         complete relational database.\n              processing of individual             functions, establishing        o Create opportunities for new\n              taxpayer accounts.                   target-state architectural       enforcement and service business\n                                                   pattern for bulk data            processes that rely on a more\n                                                   distribution.                    complete, reliable database.\n\n    TS 2    \xe2\x80\xa2 Financial material weaknesses \xe2\x80\xa2 Target application                \xe2\x80\xa2 Address financial material weaknesses,\n              associated with individual      framework developed                 demonstrate compliance with Federal\n              taxpayer account processing     and deployed.                       Financial Management System\n              addressed.                    \xe2\x80\xa2 Target technology                   Requirements, and maintain a clean\n                                              framework developed                 audit opinion.\n                                              and deployed.                     \xe2\x80\xa2 Improve security and privacy posture\n                                                                                  by addressing critical weaknesses with\n                                                                                  the core tax account processing\n                                                                                  application.\n\nTarget \xe2\x80\xa2 To improve business                \xe2\x80\xa2 Target applications               \xe2\x80\xa2 Continue the focus on moving away\n              processes that rely on timely   completed.                          from 1960\xe2\x80\x99s technology (i.e., aging\n              and accurate individual       \xe2\x80\xa2 Transitional components             infrastructure and applications).\n              taxpayer account information.   retired.\nSource: The IRS CADE 2 Academy, Program, Strategies, Architecture and Transition, January 2011. Note: TS =\nTransition State.\n\n\n\n\n1\n    See Appendix VIII for a glossary of terms.\n                                                                                                                Page 23\n\x0c                                 The Customer Account Data Engine 2\n                           Database Implementation Project Made Progress\n                          in Design Activities, but Improvements Are Needed\n\n\n\n                 Figure 2: Flow Chart of the CADE 2 Transition Strategy\n\n\n\n\nSource: The IRS CADE 2 Academy, Program, Strategies, Architecture and Transition, January 2011. Note:\nFigure presents conceptual models of the Current State, Transition States 1 and 2, and Target State processing\nflows for individual income tax account. AMS = Accounts Management Services. CFOL = Corporate Files On-\nLine. IDRS = Integrated Data Retrieval System. IPM = Integrated Production Model. R2 CPE = Return to\nCurrent Processing Environment.\n\n\n\n                                                                                                       Page 24\n\x0c                               The Customer Account Data Engine 2\n                         Database Implementation Project Made Progress\n                        in Design Activities, but Improvements Are Needed\n\n\n\n                                                                                            Appendix VII\n\n                     Database Implementation\n                   Design Issues in Pending Status\n\n\n      Title                                    Description                                   Target Date\n\n Mapping           Document in the Database Implementation Design Specification             5/31\n Transformation    Report that describes how Informatica mappings apply the                 on target\n Rules to          transformation rules, as well as how complexity, performance, and\n Informatica       reusability are addressed.\n Implementation\n Details           Provides a description of the transactional boundaries for both a\n                   logical unit of work (e.g., accounts and modules) and the operational\n                   units of work (e.g., commit intervals).\n\n\n Residual          The current design has not been completed for physical design of the     5/31\n Current CADE      retention and printing of Government Accountability Office transcripts   on target\n Data              in the current CADE database.\n (Dependency)\n\n\n Integrated        Various areas of the design cannot be finalized until the Integrated     5/31\n Production        Production Model design is finalized.                                    on target\n Model Design\n (Dependency)\n\n\n Process           Finalize documentation of physical design for the Process Automation     Closed on 5/6\n Automation        and Monitoring.\n and Monitoring\n Design\n\nSource: The IRS CADE 2 Milestone 4a Design Pending Issues, dated May 11, 2011.\n\n\n\n\n                                                                                                        Page 25\n\x0c                              The Customer Account Data Engine 2\n                        Database Implementation Project Made Progress\n                       in Design Activities, but Improvements Are Needed\n\n\n\n                                                                              Appendix VIII\n\n\n                               Glossary of Terms\n\nTerm                 Definition\nBalance and          Refers to the overall mechanism for accumulating and checking counts and\nControl              amounts to ensure overall processing integrity.\nBusiness Rule        A statement that defines or constrains some aspect of the business (see\n                     Business Rule Set).\nBusiness Rule Set    A group of business rules related to a common topic or business decision.\nBusiness System      A document containing the end-state vision and solution concept, the\nReport               architecture, and the requirements analysis that form the basis for\n                     subsequent solution design, development, integration, testing, and\n                     deployment of the system. This document is comprised of three principal\n                     sections: Business Systems Concept, Business System Architecture, and\n                     Business System Requirements.\nCorporate Files      A system that provides online transactional access to IMF and Business\nOn-Line              Master File data, Information Return Program data, and various other\n                     related data collections. These files are accessed via IRS-developed\n                     Customer Information Control System command codes.\nCurrent Processing   The IRS\xe2\x80\x99s existing entire information technology environment including\nEnvironment          business applications, data stores, data interfaces and processing flows,\n                     infrastructure, and information technology services, as well as involved\n                     organizations, locations, processes, policies, and people.\nCustomer Account     A major component of the IRS modernization program. The system\nData Engine          consists of current and planned databases and related applications that\n                     work with the IRS Master File system (see Master File below).\nCustomer Account     Defines the Program\xe2\x80\x99s approach for delivering the Customer Account Data\nData Engine 2        Engine 2 (CADE 2) solution and describes the path from the current state\nProgram Roadmap      to the target state through the identification and definition of Program\n                     Transition States.\n\n\n\n\n                                                                                         Page 26\n\x0c                            The Customer Account Data Engine 2\n                      Database Implementation Project Made Progress\n                     in Design Activities, but Improvements Are Needed\n\n\n\nTerm               Definition\nCustomer           One of the features in the Solution Layer of the ELC Framework. A\nTechnical Review   Customer Technical Review is a review performed by IRS stakeholders on\n                   an artifact or a small group of closely related artifacts produced by a\n                   project with the purpose of facilitating approval of the artifact by ensuring\n                   early stakeholder feedback as well as early identification and resolution of\n                   issues and actions.\nDaily Processing   Planned to modify affected tax processing systems and applications to\nProject (CADE 2)   accomplish daily processing of individual taxpayer accounts.\nDatabase           An application that manages data and allows fast storage and retrieval of\n                   that data.\nDesign             Documents the application design, data design, technical infrastructure,\nSpecification      and traceability to the requirements. It also describes the design based on a\nReport             defined scope and the business system requirements that are described in\n                   the CADE 2 Project Charter, the CADE 2 Database Implementation\n                   Business System Report, and the CADE 2 Program Roadmap.\nEnterprise         A unifying overall design or structure for an enterprise that includes\nArchitecture       business and organizational aspects of the enterprise as well as technology\n                   aspects. Enterprise Architecture divides the enterprise into its component\n                   parts and relationships and provides the principles, constraints, and\n                   standards to help align business area development efforts in a common\n                   direction. An Enterprise Architecture ensures that subordinate\n                   architectures and business system components developed within particular\n                   business areas and multiple projects fit together into a consistent,\n                   integrated whole.\nEnterprise File    Provides point-to-point file transfers and store-and-forward transfers within\nTransfer Utility   the IRS firewalls between systems in the Modernized environment,\n                   between Current Production Environment systems, and between\n                   Modernized and Current Production Environment systems.\nEnterprise Life    A structured business systems development method that requires the\nCycle              preparation of specific work products during different phases of the\n                   development process.\nError Handling     System that collaborates the handling of production errors.\nSystem\n\n\n\n\n                                                                                        Page 27\n\x0c                             The Customer Account Data Engine 2\n                       Database Implementation Project Made Progress\n                      in Design Activities, but Improvements Are Needed\n\n\n\nTerm                Definition\nExtract,            The processes that enable the data from multiple sources to be moved,\nTransform, and      cleansed, and loaded into another database, a data mart, or a data\nLoad (ETL)          warehouse for analysis or on another operational system to support a\n                    business process.\nIndividual Master   The IRS database that maintains transactions or records of individual tax\nFile                accounts.\nInformatica         A comprehensive, open, unified, and economical data integration platform\n                    that supports all five steps in the data integration life cycle. It sustains all\n                    roles involved in data integration\xe2\x80\x94data stewards, data analysts, architects,\n                    administrators, and developers.\nInfrastructure      The fundamental structure of a system or organization. The basic,\n                    fundamental architecture of any system (electronic, mechanical, social,\n                    political) determines how it functions and how flexible it is to meet future\n                    requirements.\nInitialization      Initial population of the CADE 2 database primarily from IMF data.\nIntegrated Data     The IRS computer system capable of retrieving or updating stored\nRetrieval System    information; it works in conjunction with a taxpayer\xe2\x80\x99s account records.\nIntegrated          Intended to be a data store to meet IRS needs for data analytics and long-\nProduction Model    term reporting and as a source for other types of analytic data that\n                    supplement the transactional core data store.\nInterface Control   An ELC artifact documenting an agreement between two (or more) parties\nDocument            used to define and gain consensus on an interface between systems,\n                    subsystems, or system components developed by different groups.\nLogical Design      The second of two-stage components of the Preliminary Design Phase in\n                    the System Life Cycle Layer of the ELC Framework. Completes the\n                    logical design from all perspectives, including logical design of\n                    applications.\nMaster File         The IRS database that stores various types of taxpayer account\n                    information. This database includes individual, business, and employee\n                    plans and exempt organizations data.\nMilestone           Scheduled time period for providing a \xe2\x80\x9cgo/no-go\xe2\x80\x9d decision point in a\n                    program or project and can be associated with funding approval to proceed.\nMilestone Exit      Checkpoint formalizing the conclusion of a Milestone.\n\n\n                                                                                            Page 28\n\x0c                              The Customer Account Data Engine 2\n                        Database Implementation Project Made Progress\n                       in Design Activities, but Improvements Are Needed\n\n\n\nTerm                 Definition\nNational Institute   A nonregulatory Federal agency, within the Department of Commerce,\nof Standards and     responsible for developing standards and guidelines, including minimum\nTechnology           requirements, for providing adequate information security for all Federal\n                     Government agency operations and assets.\nPhase                Broad segment of work encompassing activities of similar scope, nature,\n                     and detail and providing a natural breakpoint in the life cycle.\nPreliminary Design One of the phases in the System Life Cycle Layer of the ELC Framework.\nPhase\nPrivacy Impact       An analysis of how information is handled to: 1) ensure handling\nAssessment           conforms to applicable legal, regulatory, and policy requirements regarding\n                     privacy; 2) determine the risks and effects of collecting, maintaining, and\n                     disseminating information in identifiable form in an electronic information\n                     system; and 3) examine and evaluate protections and alternative processes\n                     for handling information to mitigate potential privacy risks.\nProgram              A set of projects and other activities undertaken to improve the IRS.\nProject              A group of tasks to accomplish a specific objective with a beginning and\n                     ending date that is planned, monitored, and measured; follows a life cycle\n                     process; and results in deliverables or end products.\nPrototype or         Prototyping is the process of quickly putting together a working model (a\nPrototyping          prototype) in order to test various aspects of a design, illustrate ideas or\n                     features, and gather early user feedback. Prototyping is often treated as an\n                     integral part of the system design process.\nRelational           A collection of data items organized as a set of formally described tables\nDatabase             from which data can be accessed or reassembled in many different ways\n                     without having to reorganize the database tables.\nRequirement          A formalization of a need and statement of a capability or condition that a\n                     system must have or meet to satisfy a contract, standard, or specification.\nRisk                 Identification of a condition that can pose a barrier to the progress or\n                     delivery of the project if left unmitigated.\n\n\n\n\n                                                                                            Page 29\n\x0c                              The Customer Account Data Engine 2\n                        Database Implementation Project Made Progress\n                       in Design Activities, but Improvements Are Needed\n\n\n\nTerm                 Definition\nRisk-Based           A decision made by individuals responsible for ensuring security by\nDecision             utilizing a wide variety of information, analyses, assessments, and\n                     processes. The type of information taken into account when making a\n                     risk-based decision may change based on life cycle phase, and a decision is\n                     made taking the entire posture of the system into account. Some examples\n                     of information taken into account are formal and informal risk assessments,\n                     risk analysis assessments, recommended risk mitigation strategies, and\n                     business impact.\nSharePoint           A web-based repository that the IRS uses to store and control\n                     organizational products and documentation.\nSolution Concept     Describes a complete solution for realizing the future state vision that\n                     includes all domains of change.\nStakeholders         An individual or organization that is materially affected by the outcome of\n                     the system. Key stakeholders represent both business and technical\n                     functions that fully participate in the architecture development effort to\n                     ensure that directional guidance is both accurate and sufficient. These\n                     stakeholders are empowered to make project and architectural decisions.\n                     Examples of project stakeholders include the customer, the user group, the\n                     project manager, the development team, and the testers.\nSystem               A set of interconnected hardware and programs that the IRS uses to\n                     perform certain business functions.\nSystem Concept       Provides a conceptual view of the chosen data, application, and\n                     infrastructure (technology) architectures for realizing the\n                     future-state vision.\nTransformation       Used by the ETL Program to transform individual taxpayer accounts from\nRules                IMF flat-file formats and current CADE relational database formats (for\n                     the one-time initialization) to the formats and structures defined for the\n                     CADE 2 database.\nTransition State 1   Specific to CADE 2. An intermediary state for the CADE 2 system,\n                     delivering a set of functionality as defined by the Roadmap and other\n                     supporting documents.\n\n\n\n\n                                                                                           Page 30\n\x0c              The Customer Account Data Engine 2\n        Database Implementation Project Made Progress\n       in Design Activities, but Improvements Are Needed\n\n\n\n                                                  Appendix IX\n\nManagement\xe2\x80\x99s Response to the Draft Report\n\n\n\n\n                                                           Page 31\n\x0c       The Customer Account Data Engine 2\n Database Implementation Project Made Progress\nin Design Activities, but Improvements Are Needed\n\n\n\n\n                                                    Page 32\n\x0c       The Customer Account Data Engine 2\n Database Implementation Project Made Progress\nin Design Activities, but Improvements Are Needed\n\n\n\n\n                                                    Page 33\n\x0c'